Alerts This Week
Warning Icon 1 1,394
Alerts This Week
Warning Icon 1 1,394

Ubuntu 20.04 LTS: USN-4359-1 Moderate: APT Crash Vulnerability Fix

ubuntu
Calendar Grey May 14, 2020
Dist Ubuntu Esm H88
Recent flaw in APT on Ubuntu could permit intruders to destabilize system performance. It is advisable to apply updates for vulnerable installations.
APT could be made to crash if it opened a specially crafted file.

Summary

APT could be made to crash if it opened a specially crafted file.

Software Description:

- apt: Advanced front-end for dpkg

Details:

It was discovered that APT incorrectly handled certain filenames during

package installation. If an attacker could provide a specially crafted

package to be installed by the system administrator, this could cause APT

to crash.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 20.04 LTS:
  apt                             2.0.2ubuntu0.1

Ubuntu 19.10:
  apt                             1.9.4ubuntu0.1

Ubuntu 18.04 LTS:
  apt                             1.6.12ubuntu0.1

Ubuntu 16.04 LTS:
  apt                             1.2.32ubuntu0.1

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-4359-1

CVE-2020-3810

Severity
important
Lowest
Low
Medium
High
Critical

May 14, 2020

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here